Data Backup and Recovery Checklist

List every system that holds client or transaction data: Dotloop or SkySlope transaction folders, the team CRM (Follow Up Boss, kvCORE, BoomTown), shared Drive or OneDrive, accounting (Brokermint, QuickBooks), and broker email. Don't forget agent-owned data on team CRMs — per the agent agreement, the brokerage owns those leads.

Recovery Point Objective (how much data you can afford to lose) and Recovery Time Objective (how fast you must be back up) drive everything else. Trust account records and active transaction files usually need RPO under 24 hours; marketing assets can tolerate more.

Three copies of the data, on two different media, with one offsite. For a small brokerage this typically means production SaaS + a cloud backup vendor (Backblaze, Datto, Spanning) + a periodic local export to an encrypted external drive held by the broker.

Earnest money ledgers and reconciliations are the highest-risk records in the brokerage — state commission auditors will ask for them on demand. Confirm the offsite copy is current and that the broker (not just the bookkeeper) has access credentials.

Most transaction-management platforms (Dotloop, SkySlope, Brokermint) don't include long-term export by default. Use the platform API or a vendor like Spanning to pull a nightly snapshot to your cloud backup target.

Schedule a recurring export of contacts, notes, and pipeline stages — at minimum weekly. If an agent departs and the brokerage owns the leads, the export is your evidence of the data state at separation.

Open the backup vendor dashboard and confirm every scheduled job for the past week ran to completion. Silent failures are the most dangerous mode — a job that ran but skipped a folder.

Per system: where the backup lives, who has restore credentials, the step-by-step restore procedure, and the expected RTO. Keep one printed copy outside the cloud — if email and Drive are down, the runbook on Drive is useless.

Decision-maker (broker-in-charge), executor (IT or vendor), client communicator (TC or office manager), and legal contact for breach notification. Wire-fraud incidents in particular need the broker on the call within minutes.

Pick a realistic scenario — ransomware on the office file server the week before three closings — and walk through the runbook end to end. Time how long each restore actually takes and compare to your RTO.

Confirm the cloud backup vendor encrypts at rest with AES-256 and that the brokerage holds (or escrows) the keys. For local external drives held by the broker, use BitLocker or FileVault and store the recovery key separately.

Backups capture buyer SSNs, bank routing numbers, and wire instructions — nonpublic personal information under GLBA and state privacy laws. Confirm access logs exist, retention matches the state commission rule, and the vendor's BAA or DPA is current.

Sample five closed transactions from the prior quarter and confirm the full file is present in backup: agency disclosure, signed agreements, EMD receipt and trust-ledger entry, inspection records, settlement statement. State auditors sample the same way.

For each missing or incomplete file, note the transaction, the missing item, the responsible agent, and the remediation step. Recurring gaps from one agent or one platform point to a process fix, not a one-time correction.